Open
Bug 337785
Opened 19 years ago
Updated 2 years ago
Importing CA chain: Can't import new intermediate if root is already present
Categories
(Core :: Security: PSM, defect, P3)
Core
Security: PSM
Tracking
()
NEW
mozilla1.9alpha1
People
(Reporter: KaiE, Unassigned)
References
Details
(Whiteboard: [kerh-coa][psm-backlog])
Given this hierarchy of CA certs:
Root CA Cert
|
|_ Intermediate cert A
|
|_ Intermediate cert B
Go to a web page that delivers:
Root CA Cert
|
|_ Intermediate cert A
as content-type application/x-x509-ca-cert.
Import that chain.
Go to cert manager and you'll find that both certs have been imported.
Now go to a web page that delivers:
Root CA Cert
|
|_ Intermediate cert B
as content-type application/x-x509-ca-cert.
Actual result:
Nothing gets imported in addition.
You get a message saying "cert already exists".
Expected behaviour:
Intermediate cert B should get imported
|
Reporter | |
Updated•19 years ago
|
Whiteboard: [kerh-coa]
|
|
Reporter | |
Comment 1•19 years ago
|
||
Here are two example chains that can be used to reproduce the bug:
http://kuix.de/misc/bug337785/chain1.php
http://kuix.de/misc/bug337785/chain2.php
|
||
Updated•19 years ago
|
Priority: -- → P2
Target Milestone: --- → mozilla1.9alpha
|
||
Updated•18 years ago
|
QA Contact: psm
|
|
Reporter | |
Comment 2•12 years ago
|
||
reassign bug owner.
mass-update-kaie-20120918
Assignee: kaie → nobody
|
||
Comment 3•9 years ago
|
||
I think this will be fixed by bug 1257403, although there is still the issue of the already present root that may or may not prevent this working as expected.
Depends on: 1257403
Whiteboard: [kerh-coa] → [kerh-coa][psm-backlog]
|
||
Updated•2 years ago
|
Severity: normal → S3
You need to log in
before you can comment on or make changes to this bug.
Description
•